Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/YcIICLiUkOzO2AxsTM6T7gY-jhA.roa
File: YcIICLiUkOzO2AxsTM6T7gY-jhA.roa (raw, json)
Hash identifier: dRaZcoF+Bb01nCAm3Z9Tg7LZ+v/Rh9TFMBVsMYp75N0=
Subject key identifier: 61:C2:08:08:B8:94:90:EC:CE:D8:0C:6C:4C:CE:93:EE:06:3E:8E:10
Certificate issuer: /CN=807709e7b0efba127025c83e5d3194c71ba428c3
Certificate serial: 06EA755F
Authority key identifier: 80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/YcIICLiUkOzO2AxsTM6T7gY-jhA.roa
Signing time: Sat 01 Jan 2022 14:05:46 +0000
ROA not before: Sat 01 Jan 2022 14:05:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 195.238.242.0/23 maxlen: 24
195.238.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116028767 (0x6ea755f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=807709e7b0efba127025c83e5d3194c71ba428c3
Validity
Not Before: Jan 1 14:05:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61c20808b89490ecced80c6c4cce93ee063e8e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:50:6c:00:16:53:89:c8:59:cb:07:2a:48:db:
2b:19:bf:b3:87:ff:fb:ef:2a:bb:de:0b:86:95:2c:
d9:c1:c1:b0:ba:0d:55:3a:90:36:f5:5c:37:d5:7d:
a0:cd:f0:0e:06:a2:ae:44:2b:46:a1:d2:19:96:25:
59:c3:f6:fd:ed:d8:16:d0:71:ad:00:bf:68:0d:fb:
e1:0d:83:69:f2:d7:94:e4:4d:d5:70:7a:d8:b3:5c:
47:b5:1b:60:07:ee:72:0e:87:54:12:89:6c:a8:ab:
06:65:d9:69:a1:61:b8:59:4c:41:d0:76:9e:97:a3:
b1:6a:15:bb:03:3d:74:a3:1b:43:26:7c:b0:47:d1:
84:f7:90:aa:8d:2b:94:ac:ec:1c:e3:bb:58:33:bf:
c2:ff:ff:17:a4:83:35:7f:27:2e:60:2e:68:d7:8c:
4a:f2:bc:d7:77:53:6d:8a:d7:42:59:fd:21:3e:7d:
4f:43:dd:4c:1e:16:4c:62:ff:c5:0a:b0:8c:88:d7:
28:79:83:4e:9f:8f:32:39:6f:58:a7:41:14:db:0f:
8b:48:3c:73:ac:67:11:5a:80:9e:25:fc:bc:67:eb:
50:fa:06:96:ab:55:bc:26:73:41:17:f9:b1:a8:48:
27:43:d4:64:4b:40:a6:ea:68:40:f6:a0:b6:6e:0c:
65:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:C2:08:08:B8:94:90:EC:CE:D8:0C:6C:4C:CE:93:EE:06:3E:8E:10
X509v3 Authority Key Identifier:
keyid:80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/YcIICLiUkOzO2AxsTM6T7gY-jhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/gHcJ57DvuhJwJcg-XTGUxxukKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.95.0/24
195.238.242.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:c7:7f:fe:a2:78:d3:f6:dd:a3:75:76:e7:52:39:d4:38:6a:
87:2e:b8:45:29:94:f7:b4:97:ca:44:99:51:9a:15:78:10:18:
2b:a5:bc:e6:f4:1c:86:b1:0b:f9:57:05:1e:1c:d4:7e:77:f3:
48:b6:51:b7:05:a1:f8:9d:ab:52:a2:2f:78:bb:cc:14:a9:50:
75:65:5e:11:94:9f:d2:4f:97:84:0a:fb:97:2f:64:8b:35:31:
86:65:73:8d:48:4a:90:5e:72:ed:72:c5:2c:2b:b6:04:db:85:
f4:fc:4a:9e:a0:57:1e:44:79:69:3e:46:90:09:f0:97:af:dd:
19:5b:d9:94:96:08:16:7b:9a:14:87:f5:22:95:ce:84:32:8e:
b2:5a:b8:97:b6:d5:fd:4d:67:ec:9a:87:26:d3:fd:f4:04:51:
ff:b1:6d:39:54:16:79:82:47:fc:3a:c6:88:aa:8e:2b:c8:8f:
61:f3:ee:eb:dd:2d:51:fb:83:0a:4b:1d:5c:19:c7:4e:c7:b9:
1f:b6:b1:ad:79:97:ae:73:6b:a4:7d:7d:13:5e:39:17:1b:1e:
ef:3e:fc:53:02:2e:68:10:57:5f:14:f3:6c:c0:f0:38:79:54:
a6:04:8a:89:f0:2b:94:4c:c8:bf:13:90:4c:08:18:c3:8f:36:
53:03:60:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:49 2024 by rpki-client on console-fra.rpki-client.org